Centralize and enable firewall log analysis

Centralize and enable firewall log analysis

SolarWinds® Log & Event Manager helps collect all logs and events from hundreds of network devices, including firewalls and IDS/IPS devices, in a central location. Centrally logging and monitoring firewall activity gives you greater flexibility to determine whether the configuration changes or newly added rules work as intended and debug them in case of issues. It's good to collect and analyze firewall logs according to bandwidth usage, denied rule rates, user activity, protocol usage, and so on.

Customize rules for effective event correlation

Customize rules for effective event correlation

SolarWinds Log & Event Manager provides powerful in-memory event correlations in real-time for thousands of network, application, database, and firewall events. These event correlations can either be configured via built-in rules or customized to help you better understand various events. One of the most significant advantages of using LEM is having access to its high-compression data model. LEM can store data at up to a 60:1 compression ratio, so that it doesn't create a storage overhead for data retention.